Threat Report: SparkCat Crypto Stealer

Published: February 5, 2025

Source: Securelist (https://securelist.com/sparkcat-stealer-in-app-store-and-google-play/115385/)

Summary:

In late 2024, researchers discovered a new malware campaign dubbed ‘SparkCat’. This campaign targeted Android and iOS users through both official and unofficial app stores. The malware, once installed, scanned users’ image galleries in search of crypto wallet recovery phrases using an OCR model.

Recommendations:

1. User Awareness: Educate users about the risks of downloading apps from unofficial sources and the importance of keeping software up-to-date.

2. App Store Caution: Be wary of apps with low ratings, few reviews, or those that mimic popular apps but have different developer names.

3. Regular Backups: Encourage users to regularly backup their data to prevent loss in case of infection.

4. Antivirus Software: Ensure all devices have up-to-date antivirus software installed.

<

p style=”padding-left: 40px;”>5. Report Suspicious Activity: Prompt users to report any suspicious app behavior or unexpected device actions.